A login system allows users to access computer systems without using a password. The passwordless system and method can use other information to securely and reliably identify true authorized system users. The identity of a user can be associated with their mobile device. The login can be based upon a minimal amount of information such as a name and a phone number which can be stored as an identification record for each of the users in a database.
|
1. A method for a passwordless login to an internet based system comprising:
providing a server, a database and a smart phone in communication with the server through a network;
transmitting from the smart phone to the server, only the user name and a phone number for the smart phone associated with a user without any password;
recognizing by the server, the user name and the phone number for the smart phone during a login of the user;
transmitting by the server, a verification message that includes a unique randomly generated verification code that is part of a hyperlink for the passwordless login to the phone number of the smart phone;
displaying a webpage for the hyperlink for internet based system on the smart phone of the user during the passwordless login;
receiving by the server, a confirmation message transmitted through the hyperlink from the smart phone to authenticate the user during the passwordless login of the user;
binding by the server, identification information for the smart phone to the user during the passwordless login of the user; and
authorizing by the server, the user and the smart phone to interact with the server.
12. A method for purchasing goods comprising:
providing a server, a database and a mobile device in communication with the server through a network;
transmitting from the mobile device to the server, the user name and the phone number for the mobile device associated with the user;
recognizing by the server, the user name, the phone number and the unique identifier for the mobile device to authenticate the user during a passwordless login of the user;
inputting identification information for the goods in a personal point of sales program running on a mobile computing device;
transmitting by the server, a verification message that includes a unique randomly generated verification code that is part of a hyperlink for the passwordless login to the phone number of the mobile device;
displaying a webpage for the hyperlink for purchasing the goods on the mobile device of the user during the passwordless login;
receiving by the server, a purchase acceptance response to the verification message transmitted through the hyperlink for accepting the purchasing the goods from the mobile device to authenticate the user during the passwordless login of the user;
binding by the server, identification information for the mobile device to the user; and authorizing by the server, the user and the mobile device to interact with the server using the passwordless login to complete the purchase of the goods.
2. The method of
3. The method of
4. The method of
6. The method of
7. The method of
8. The method of
9. The method of
10. The method of
canceling by the server, the authorization of the user and the smart phone to interact with the server using the passwordless login when the receiving step is after the predetermined time from the transmitting step.
11. The method of
canceling by the server, the authorization of the user and the smart phone to interact with the server using the passwordless login when the phone number for the smart phone is no longer associated with the user.
13. The method of
14. The method of
15. The method of
16. The method of
17. The method of
canceling by the server, the authorization of the user and the mobile device to interact with the server using the passwordless login when the receiving step is after the predetermined time from the transmitting step.
18. The method of
canceling by the server, the authorization of the user and the mobile device to interact with the server using the passwordless login when the unique identifier for the mobile device is no longer associated with the user.
|
This patent application is a continuation of U.S. patent application Ser. No. 14/578,353, “System And Method For Passwordless Login” filed Dec. 20, 2014, now U.S. Pat. No. 10,686,781, which claims priority to U.S. Provisional Patent Application No. 61/920,475, “System And Method For Passwordless Login” filed Dec. 24, 2013. U.S. patent application Ser. Nos. 14/578,353 and 61/920,475 are hereby incorporated by reference in their entirety.
This invention relates generally to the computer interface field and more specifically to a new and useful system and method of identifying a user without a password.
Internet based systems typically require a user to login on a website to access and interact with information stored on a server. The login process typically requires a user to register with the system by providing personal information, create a user name and setting a password. Once a user has registered with the system, the user can login to the system by providing a username and a password. There are many problems with the username and password based login systems because users may have their passwords stolen and/or users may have many different passwords which are used for different websites and are commonly forgotten. What is needed is a system which can identify a user and provide a high level of security without the need for a password.
The present invention is directed towards a simplified and secure system for allowing people to register with computer systems without using a password and subsequently login with the computer systems without using a password. The problem with usernames and passwords is that they are easily forgotten and/or stolen. In contrast, the inventive passwordless system and method can use other information to provide better security and a more reliable method for identifying true authorized system users. An objective of the present invention is to associate the identity of a user with their mobile device, as mobile devices (particularly subscription mobile devices) are difficult to fake or spoof. Another objective of the present invention is to provide a highly secure login system for accurately identifying a person based upon a minimal amount of information. For example, in an embodiment, the login and/or registration may only require a user to provide his or her name and a phone number which is input through a user interface and transmitted (perhaps along with other latent information in the mobile device, such as previous website cookies or mobile device identifiers) to the system server. The system server can create and store identification records for the user in a database.
The system can then send a message directly to the user's smart phone using the phone number, to confirm that the user is in fact the owner of that smart phone and that the user is in possession of that smart phone (e.g. closing the loop between the user and the device—resolving the identity of the user to include the phone number or mobile device ID). While not infallible, this provides a pretty good layer of security for linking the user to their device. When the system server receives the verification message from the user's smart phone, the system can also receive additional information about the mobile device that is owned by the user such as: a mobile device fingerprint, a mobile device serial number, International Mobile Station Equipment Identity (IMEI), an AppSignature or any other suitable identification information. This phone information can be used to authenticate the user. In some cases the phone number may be an indicator of possible fraud. For example, a phone number for a pre-paid phone can be detected by the inventive system and may be considered to be an unacceptable fraud risk that can preclude the user from access to the system services.
Based upon the information that is received, the server may be able to verify that user is a true person who can be an authorized user of the system. In different embodiments, the server can perform various steps to make these determinations. The server may check phone number databases to determine if the phone number matches the name. Using the name and phone number, the system can obtain additional information about the user. For example, the system can use this information to find a user's address(es), e-mail address(es), social network activity, etc. Information indicating higher amounts of activity will increase the likelihood that the user is a real person who can be an authorized user of the server system. The more “normal” information that is associated with the user that the server finds, the higher the probability that the user is a real person who can be authorized to use the system.
In some situations, the server will not be able to determine that the user is a real person or an authorized user from the name and phone number provided by the user. If the server cannot verify that the user input data is for a real person, then the server can request additional information from the user. This need for more information can occur (without fraud) when the user is using a new device that has never registered before, new phone number, new email, entirely new user, new email address, government ID number, etc. In an embodiment, the server may ask the user for additional information that can be used by the server to verify a user as a real person rather than a bot or fraudulent user. Information can include: identity platform logins for Gmail, Facebook, Yahoo, Microsoft, Hotmail or any other known source for user IDs. The system server can use these logins to verify the user's account and information with these services.
Many people have multiple smart phones or mobile devices having internet browsers. In an embodiment, information such as shared email addresses and phone numbers can be used across accounts to link accounts to existing user identities and mobile devices to ensure that the current activity/login attempt is associated with the correct user, and enabling them to have a current account status/balance properly reflected. The linking of device, user and transaction information can prevent a user from paying off their account with a first device and having the account balance not associate with the account they have used previously and are expecting to be paying off. Linking the information from multiple mobile devices used by a single user or single entity can help to keep track of financial transactions.
After a user has been authenticated (e.g. the name, phone number and other information is consistent), the user's mobile device can be verified by the user. The verification is important because it provides a safeguard when a mobile device is transferred to a new user. For example, these safeguards are useful when a user sells, returns or transfers a mobile device that he or she has previously used. Although the mobile device such as a smart phone is associated with the original user (seller), the new user (buyer) cannot make purchases using the sold mobile device using the seller's ID/internal mobile device fingerprint and/or seller identification that associated with that device. The end user's mobile device may include system for verifying a user's finger print. In some embodiments of the present invention, the system may require a fingerprint verification to confirm that the proper device user is performing the transaction.
As discussed, the server can associate the user with the phone number of the mobile device as well as other mobile device identification information. If the mobile device is sold, lost, stolen or transferred to another user, the new user will not be able to use the original user's identity to interact with the system server. If the new user attempts to use the original user's identity, the system will detect the mobile device transfer and prevent unauthorized use of the original user's identity. The new user may input the original user's name and phone number. However, when the text, SMS or email message with the link is sent to the phone number associated with the new original user (seller), the new user (device buyer) won't receive the text, SMS or email because the phone number and/or email address of the original user should have been removed from the mobile device. When the mobile device is sold, lost, stolen or transferred, the mobile device will be given a different phone number or email address or Apple ID/Line ID/Skype ID. Thus, the user identity verification step will fail.
In other embodiments, the identification can also be a push notification to an App that may or may not be perceived by the user (e.g. a silent push notification). For example, the identification can be a simple security question like “last 4 of your social”, a secret question, a simpler question like “what color is your hair?” or “which address did you live at last year?” Any other suitable security questions can be used by the inventive system.
If the user is identified as malicious or associated with a malicious user identity, then the system can transfer the malicious user to a “honey pot” to gather information from these “bad” users. The system server may ask for additional information about other accounts that also may have been compromised by the malicious user and may now associated with the malicious user's ID including: phone numbers, emails, bank accounts, government IDs, names, addresses, device fingerprints, network addresses, etc. This verification can be particularly important if the malicious user has passed through the authentication analysis. In contrast, if the authentication and the verification failed, this might indicate a used phone was acquired from a good user.
The inventive system can be used by any system that requires authorized user logins and provides substantial benefits because the users do not need to remember user names and passwords. However, in an embodiment, the system can be setup with an optional password for users wishing for additional security or a more traditional interface. The primary mechanism for insuring accurate authorization is the use of SMS messages that include the verification information or hyperlink. The combination of the user identification with the corresponding mobile smart phone information provides a strong indication or a high likelihood that the user is the true authorized system user.
The following description of the preferred embodiments of the invention is not intended to limit the invention to these preferred embodiments but rather to enable any person skilled in the art to make and use this invention. The passwordless login is designed to simplify the user registration process by removing the password step, and/or the passwordless login can be used to confirm that the user is in fact the owner of that smart phone and that the user is in possession of that smart phone (e.g. closing the loop between the user and the device—resolving the identity of the user to include the phone number or mobile device ID). Another way of describing the inventive passwordless login system is a probabilistic login. All, username/password combinations are probabilistic. There is a high probability that someone who can provide the proper username and password combination is the true registered user. However, there is also a possibility that someone else can use the credentials if the passwords are stolen. The inventive passwordless login may provide a better probabilistic login with a higher probability of being real (e.g. not easily faked) by asking a user for a minimum amount of information.
With reference to
With reference to
The user data collection interface 210 can function to collect data from an entity, user, person, company, organization, group of people, or device. The data can be input by a user, such as a phone number or email address, or can be collected automatically about the user, such as capturing a user's phone number from a caller ID signal, taking a photograph from a user. The user data collection interface 210 can also do unit testing or input verification testing on the user input, for example making sure there are enough digits in a phone number entered by a user, or verifying that an email contains an @ symbol. The user data collection interface can be a form on a website, a mobile app on a mobile device such as a smartphone, tablet, smart watch, mobile computer, client computer, etc. In one embodiment where the user data collection interface 210 is a mobile app on a mobile device, a unique identifier of the mobile device (such as an IMEI number, a phone number, a device serial number, SIM card ID, a digital fingerprint, or other suitable identifier that can uniquely identify a user device) can be collected by the mobile app such that user data is collected, without necessarily requiring input from a user.
The user identification 220 module functions to determine if a user is identified, and/or begin a registration process for new users who cannot be identified with the information received from the user data collection interface 210. If a user or entity cannot be identified, the user identification 220 module can utilize a user verification 240 module to register a user and/or store the data such that a user identification 220 module can identify the user in the future.
User verification 240 module can also function to register a completely new user or identity. A completely new registration can use information such as: existing identity platforms, such as Facebook, Gmail, Yahoo Mail, a custom registration page for a company or shopping cart, a subscription service, a mailing address, an account number, a credit card number, a bank account number, a government ID number such as a social security number or any other suitable identification. This information can be associated with a new user identity.
In one variation, when a user is authenticated by a user verification 240 module, data that is shared between a newly registered entity and a previously registered entity can be strongly indicative of the identities being related to the same entity, person or user, and in this variation, the user can be identified and associated with a user account, or other historical information relating to their use of the permission system. In another embodiment, if a user can be identified by the user identification 220 module, using data collected by the user data collection interface 210, the user identification device 220 can associate other information with the identified user.
For example, if a user phone number was collected by the user data collection interface 210, and the number may be associated with the user and recognized by the system. However, a user may have changed their phone or mobile device since the last time the user identification 220 module received the user's phone number as an input, the user can be identified by their phone number, but also a unique identifier for their mobile device can now be associated with that identity, in case the phone number changes.
In another example, if a user phone number was collected by the user data collection interface 210, the user identification 220 module may not recognize the number. However, if the user data collection interface 210 also collects a unique device identifier, and can recognize the device associated with an identity, and the user identification device 220 can associate a new number with the same identity. In this example, a user verification device 240 can also verify that it is the same identity using an additional factor of authentication, such as a password, an email, an SMS message, a URL link to a website, an RSA token code generator, or any other form of two factor authentication method. This two factor process can be helpful in a situation where a user or identity has lost or sold a mobile device. While the mobile device is recognized by the user identification 220 module, the user verification 240 module can attempt to verify the identity of the new phone number that can be associated with a mobile device, and if the verification fails, the mobile device unique identifier can be disassociated from a user identity until the mobile device identifier can be associated with a verifiable user identity.
In yet another example, a user data collection interface 210 can collect information about the user's mobile device such as: a unique identifier for the mobile device and the mobile device phone number, etc. Using this information the user identification device 220 can identify a unique user that can be verified and authenticated, possibly with a high degree of statistical success. If the system determines that the user identity has a very high probability of being accurate, in an embodiment, the user verification 240 module can be bypassed.
The permission-determiner 250 module can function to determine permissions for a user or identity or entity that has been identified, registered or otherwise authenticated. These permissions can vary depending upon the type of function of the internet based service. For example, in one variation, the permission determined can be a credit score which can correspond to the terms of financial credit that the system can offer the user. In another embodiment the permission determined by the permission-determining device 250 can be a credit limit which limited the total amount of financial credit that the system can offer the user. In yet another embodiment, the permission can grant access to a “honey pot” used to collect additional information about malicious users. These are only simple examples of the permissions that can be associated with a user by the permission determiner 250 module. In other embodiments, the permission determiner 250 can accept any number and types of data inputs associated with the user. The permissions granted to each user can be different and each permission can include access or denial of access to information and/or services, read only permissions and read/write permissions, credit, credit scoring, quality of service, level of service, speed of service, frequency of service, cost of a product or service, access to a honeypot which can be a special permission which can be reserved for security testers and malicious users, etc.
The permission granting 260 module can function to grant permissions determined by the permission determining device 250. In one embodiment, the permission granted is credit to buy a good or a service, and the permission granting device can extend credit and/or process payments from a payment subsystem, as well as schedule a service, or coordinate shipping of a good, or provide access to a digitally delivered good (such as a URL link in an email or an SMS message).
When the inventive system 200 is used with a merchant service, the system 200 may have to process payments by the users. The payment subsystem 255 can function to process payments, and payments can be made using a credit card, a gift card, a bank account using Automated Clearing House (ACH) transactions, bank wires, a money transfer service such as PayPal or Western Union, or payments can be debited against a credit limit granted by the permission granting device 260. The payment subsystem 255 can also be used to process refunds.
The delivery subsystem 265 can function to facilitate delivery of goods purchased from the merchant. The delivery subsystem 265 may also be used scheduling of a purchased service and/or locating of an available rental asset to deliver the purchased goods. The delivery subsystem 265 can collect additional information from a user such as scheduling times, shipping addresses, billing addresses, gift wrapping information, delivery preferences, shipping speed preferences, electronic delivery preferences, or any other information.
The user notification subsystem 270 can function to notify a user of permissions that have been granted, and can also function to welcome newly registered users, and/or encourage newly registered users to provide additional information that can be useful for past, present or future permission determinations.
Although the inventive system can be configured to not require a password, in other embodiments, it is possible to include a password feature. The set password device 245 can function to set passwords or other authentication factors such as security questions, two factor authentication keys, tokens or other information for accounts. The set password device 245 can be used by users who require additional security for their own comfort, or for entities which require additional security (e.g. businesses with high risk of fraud), national security organizations, or any other identities or entities that may prefer or require additional or alternative security measures for identities and accounts. The set password device 245 is an optional element in the system 200.
The basic process for implementing the inventive system can be described with reference to
As shown in
Step 320 can include requesting primary identifier information from a user, functions to request information that can be used to identify a user, and the requested information can be a unique identifier such as a phone number, email address, social security number, username, passport number, device identifier of a mobile device, such as an IMEI, device serial number, customized software application signature (such as a signed App store download), registration key or any suitable device fingerprint. The primary identifier information can be chosen as an identifier that can be unique to a user, and can identify if a user is new or has used the checkout process before.
Step 330 can include computing information to request from a user for identification, functions to compute additional information that can be used to identify a user. If a user can be identified, information about that user can be automatically associated with the transaction, including user preferences, shipping addresses, payment tax rates, loyalty programs or any other suitable information. If a user cannot be identified, then the user can be prompted to sign in to an existing account, or the user can be prompted to enter information sign up or register for the service. If a user cannot be identified, Step 330 can also include transmitting an Internet hyperlink, a passcode or biometric to a user authenticated device, such as a mobile device, a smartphone, a tablet computer, or a laptop or desktop computer.
Step 340 can include requesting additional information from the user, functions to request the additional information from the user. This information can be requested through a web interface form, clicking on an Internet hyperlink to verify receipt, a text message, SMS message, a phone call, a physical mailing sent through a postal service, an email, a personal visit, data from a physical sensor, such as a finger print sensor, or any other suitable method. In one embodiment the information requested, can be a postal code/zip code, name, and/or email. In an alternative embodiment, the information requested can be completely new registration information to be entered into forms or databases manually by a user, automatically by a program, such as a browser script, or the information requested can be captured using login information from existing identity platforms, such as Facebook, Gmail, Yahoo! Mail, or any other similar service. In a further embodiment, the information can include a shipping address. The shipping address can be automatically completed using a database of possible addresses. The shipping address can be automatically completed (either partially or fully) after a first character of the address, and/or the first few characters of the address are entered by the user.
Step 350 can include determining a permission level based on requested user data, functions to process the additional information collected from a user, and use the information to classify a user for access, permission, credit and/or authorization. In one embodiment, the permission granted is credit to buy a good or a service, and the permission granting device can extend credit and/or process payments from a payment subsystem, as well as schedule a service, or coordinate shipping of a good, or provide access to a digitally delivered good such as a URL link in an email or an SMS message.
This information can result in the identification of a user, and if a user can be identified, and is determined to be a legitimate user, as opposed to a malicious or fraudulent user, step 350 can grant access, complete a transaction, ship a product, or step 350 can authenticate a user and provide a user with additional options, such as an order confirmation, special shipping instructions, size, color, flavor, materials and other parameter selections, dates and/or times of a service to be performed, or the like. In the case where a user has previously been identified, information about that user can automatically be associated with the transaction, including user preferences, additional device fingerprints, additional device verifications, shipping addresses, payment tax rates, loyalty programs or any other suitable information. Additionally, a merchant or service provider can receive information about the user for their own analysis. At the final step 360, the system grants users permissions which functions to provide access, permission, credit and/or authorization to a user. The types of permissions can vary depending upon the types of internet-based system that the passwordless login is being used with.
With reference to
If the phone number is not recognized, the system can proceed to ask the user to register with the system. The system may provide the user with several registration method options including: manual registration or automated registration (e.g. where registration data can be populated from data from a Facebook, Gmail, LinkedIn or other online account) through existing on-line user activities. The user can select the desired registration process and the inventive system will proceed with the selected registration process.
The manual registration process of the inventive system can be variable depending upon the amount of information that can be found by the system for the user. If the user has a smartphone number that matches the user's name, this may be sufficient to complete the registration. From the name and phone number, the system may be able to obtain additional publically available information such as: home address, social network activity, e-mail address, employer, financial information, etc. Based upon the submitted and collected information, the name and phone number may be sufficient to complete a new user registration.
However, if the phone number is for a prepaid phone this may indicate that more information is needed from the user to complete the registration. This additional information can include: personal, on-line and financial information. The inventive system may be able to use the provided information to verify certain facts about the user which may be sufficient to complete the registration, with the idea being that additional information can improve the likelihood that a user is who they say they are.
If the user is also an active e-mail user or social network user the system can use the e-mail or social network logins to register new system users. For example, in an embodiment a user may input email information 407 or social network information 409 to complete the registration process. Examples of e-mail logins can include: Gmail, Yahoo mail, etc. Examples of social network logins can include: Facebook, LinkedIn, etc. Once the system collects the necessary information to complete the registration, the system server can determine if the user registration has passed or failed the registration requirements 411.
If the registration fails, the system can perform additional processing to attempt to complete the registration 413. For example, if identification information provided by the user cannot be verified, the system may request credit card information from the user. The verification of the credit information can be sufficient to complete the registration. In other embodiments, other additional processing can be performed to complete the registration.
If the registration passes, the system server can transmit a welcome email or a SMS message to the user through the phone number provided by the user. In an embodiment, the welcome message may include a hyperlink and a unique randomly generated “verification code.” The user can click on the hyperlink or alternatively enter the code into a website on the mobile device/smart phone itself or another device, such as a computer, which may cause the computer or smart phone to display a browser page with a button that is clicked to complete the registration. When the user clicks on the registration button, identification information about the computer or smart phone device currently being used can be transmitted back to the system server along with the verification code. This identification information for the device can be associated with the user by the system server. This association between the user and the device identification information can be known as “binding” the device to the user (e.g. closing the loop). For future interactions, the system can check to see if the device is recognized by the identification information 421. A mismatch of identification information can indicate that the user is operating a new device 423 and the system can repeat the described process to bind the new device to the user data. Alternatively, an identification information mismatch can indicate that a user has changed their number or sold a device on the second hand market to a different user. If a mismatch of identification information is detected, the system can repeat the described process to bind the device to the user data.
The verification code can be a good means for providing system security. The return of the verification code can be evidence that the registration is proper and is being used by a real user. In contrast, if the verification code is not correct, this can be evidence that a malicious user is attempting to register with the system.
In an embodiment, the verification code can be a randomly generated alphanumeric string that can be a length that provides a high level of security. Longer character strings can provide additional security because it can be difficult to fraudulently reproduce longer random codes. In an embodiment, the verification code can be at least 5 characters long. However, in the illustrated example, the verification code is 10 characters long. The verification code can include at least one upper case letter and one lower case letter. In other embodiments, the verification code may also include symbols. In still other embodiments, verification codes can be non-character non-symbol elements, such as colors, images, sequences of images, audio sounds, or biometric data.
In an embodiment, the system may only allow the user a limited amount of time to click on the link in the SMS message and complete the registration process. In an embodiment, the response time can be about 3-10 minutes. However, in other embodiments, the response time period can be adjusted according to allow enough time for easy user registration but short enough to prevent most possible fraudulent activity, which can be up to about 15 minutes. After the response time has expired, the system may cancel or perform additional checks on the user before completing the registration. For example, if the response time has expired, the system may respond by transmitting another SMS message with a second hyperlink and a second verification code with the same or a shorter allowed response time. This limited response time can be an important means for preventing possible fraud. In a normal registration process, the user will be with the mobile device and will be able to click on the link by simply clicking on a displayed link. This action should only take a few seconds. However, to avoid situations where there are normal delays, the system can allow a response within a few minutes. If this reasonable time period expires, the system may simply perform additional checks before completing the registration. If the additional checks indicate possible fraudulent activity, the system can cancel the registration.
Once the user has completed the registration process, the system can transmit a welcome SMS message to the user's phone number. The described registration SMS message with the hyperlink and verification code can be appropriate where the transaction has been cancelled before the check out process is completed.
In other embodiments, the system may recognize that the user is attempting to purchase goods and the registration can be performed during the purchasing process. Thus, the described email or SMS message with hyperlink and verification code can be transmitted to the new user during the check out process.
Once the user registration is complete, the system can continue to process the user's purchase and provide the user with various purchase options such as in store pick up, shipping options, delivery addresses, gift wrapping, etc. The system can then provide the buyer with payment options. If the buyer decides to make the payment immediately, the system can ask the user for payment information such as credit card, debit card, PayPal or other payment methods.
If the user decides to pay later, the system can immediately send the buyer a SMS message that includes a hyperlink and a unique randomly generated verification code. The user can click on the hyperlink that may cause the computer or smart phone to display a web page for the purchase that includes information including a description of the item or service being purchased, total cost and buttons to complete or cancel the purchase. Because the unique verification code is part of the hyperlink, the proper web page will immediately be displayed for the user to complete the purchase without any additional searching.
In one embodiment, the user can verify after they have completed their purchase. Instead of receiving the text message in the registration process, the user would be allowed to temporarily register conditional on their verifying the device soon after the purchase is complete. This would be accomplished by sending the buyer a SMS message that can include a hyperlink or a unique randomly generated verification code or a request for a response through SMS (e.g. “Please respond ‘Y’ to confirm this purchase.”)
In an embodiment using a hyperlink, the hyperlink can be used to provide a verified connection between the cookie on the user's device to the phone number the user has provided. This can work by sending the hyperlink in a text message to the phone number the user has provided. The user can click on this hyperlink which can direct them to an Affirm domain that can check the cookie on their device and can associate it with the phone number. Once they user clicks the link, Affirm can verify that the device with the phone number the user provided is the same device as identified by the cookie.
Additional methods to verify a user instead of using a hyperlink transmitted via SMS can include placing a phone call to a user smartphone device that tells a user a code to enter on a website. A landline may also be possible. Alternatively, a user can verbally respond to the call with a code displayed on a website or other verification information, such as an order number, a secret question and answer, an identification number, a vocal pitch or a musical note, or any other suitable audio response.
The hyperlink could be replaced with a captcha image, sent as an mms message to a user smartphone or mobile device, wherein the captcha can include alphanumeric or symbolic codes or other information enter on a website for verification purposes, an MMS message that can contain a barcode or a QR code to scan at a point of sale (PUS) terminal for device/user pairing authentication purposes.
An alternative method can be a push notification, pushed to a user's phone, such that the user can respond to the push notification through clicking on a button in an app, responding via voice recognition prompt in an app, or any other suitable smartphone app or mobile device app, or computing application. In one embodiment, the push notifications can serve to notify a user of a verification that has transpired, but the verification itself will be automatically transmitted by the app.
In an embodiment, the system may only allow the user a limited amount of time to click on the link in the SMS message and complete the purchase. In an embodiment, the response time can be about 3-15 minutes. After the response time has expired, the system may cancel or perform additional checks on the user before completing the purchase. For example, if the response time has expired, the system may respond by transmitting another SMS message with a second hyperlink and a second verification code with the same or a shorter allowed response time.
When the user clicks on the purchase button, identification information about the computer or smart phone can transmitted back to the system server. This identification information can be associated with the user or checked by the system to confirm that the computer or smart phone is associated with the buyer. If all information is proper, the system will complete the transaction and send the user a purchase confirmation email or SMS message with a hyperlink to a full electronic purchase receipt page.
If there is a mismatch or a discrepancy in the user and device information, the system can perform additional processing in an attempt to correct or identify the error or stop a fraudulent transaction from occurring. If a malicious user or fraudulent activity is detected, the system can stop the purchase and attempt to collect more information from the malicious user.
As discussed above, after the handoff the phone number provided by the user may be recognized. If the phone number is recognized, the system can then determine if the device is recognized and already associated with the user. The system can compare the device identification information to the user information stored in a system database. If the phone number is recognized but the device identification information is not recognized, this may indicate that the user has purchased a new device. Conversely, if the device identification information is recognized, but the phone number is not recognized, it may be possible that the user has sold their mobile device, or that the user changed mobile device carriers, and in either case—verification would be a good idea. As discussed above, the system verification can include sending an SMS message to the phone number with a hyperlink. In one embodiment, clicking on the link can cause the device to display a page that sets a cookie on the user's device therefore binding the new device to the user's identity. In another embodiment, the page can include a button to be clicked by a user.
If the device and phone number are both recognized, the system may then check to determine if the phone number has been verified. In some cases, the system may know the user, phone number and device identification but the phone number verification was not performed during prior registration and/or binding attempts. The system can transmit an email or SMS message to the phone number with a hyperlink. Clicking on the hyperlink can cause the device to display a phone number verification button. Clicking the button can cause the system to transmit a verification message back to the system server. Once the user has passed the SMS verification, the system can give the user the same purchase, shipping and payment options described above.
Any embodiment of the present invention where the user verification is used to authenticate a payment method for completing a purchase can be a substantial improvement over credit card transactions because the user only has to click on large hyperlinks and confirmation buttons to complete the purchase. The user does not have to enter: a credit card number, expiration date and security code information which can be extremely difficult to do on a mobile device such as a smart phone which has a small touch screen keyboard. The inventive process is substantially more secure than credit cards as well because a person is more likely to have credit card information lost or stolen than losing a smart phone. If a phone is lost or stolen, the user can frequently remotely disable the phone and transfer the same phone number to a new or different smart phone. As described above, the inventive system can then quickly and easily be used to bind and associate the user with the new smart phone. In contrast, if a credit card is lost or stolen, it can take the user some time to even know that the card is missing or that the information has been stolen. The user must cancel the credit card and all services that use the credit card for recurring charges.
In other embodiments, the inventive system can be used for various other types of permissions and/or authorizations. Many internet based systems allow users to access their website by login process that includes inputting a user name and a password in order to interact with the website and obtain information. Many websites provide similar user interaction through mobile application programs with a similar user name and password. With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
With reference to
The sales person's mobile device can also receive the purchase information when purchases are made. With reference to
With reference to
An embodiment of the invention can be used in offline physical stores such as big box retailers. As shown in
Once the goods or services to be purchased are identified, a sales associate rings up a purchase 622. The purchase then can be processed by the sales associate or the buyer. Ringing up the purchase can also including collecting and/or allocating and/or scheduling the purchased goods and services to the customer, and informing the customer of the total purchase price. This can be performed by a computerized order management system.
The sales associate may request information from the customer 624. The customer can provide the requested information which the sales associate can enter into a payment interface 626. The customer information can be provided to the service provider and the customer account can be accessed. Alternatively, the customer can enter identifying information into a payment terminal or user interface 628 which can function to replace Steps 624 and 626. Using either method, the customer account can be associated with the purchase by the service provider server.
The service provider server can then transmit an invoice message for the goods or services purchased and the message can include a link to apply for a purchase loan 630. If the customer does not click on the loan link, the purchase can be completed without a loan 640. If the customer clicks on the loan link, the customer computing device browser is directed to a loan application website 634. The system processes the customer information in the loan application process and leverages a transaction function and real time marginal risk pricing algorithms to determine if a loan will be issued to the customer and the terms of the loan 634. The loan application process includes processing customer information by the service provider server. The application process can use identifying information about the customer, the items being purchased (e.g. the credit risk level of a purchase of eggs is different than the credit risk level of gold jewelry), and other information that can be computed using a transaction function as described in U.S. Provisional Patent Application No. 61/917,156, “System And Method Of Transacting” which is incorporated herein by reference in its entirety.
The service provider server can transmit a loan acceptance/rejection notification to the merchant server 636. If the loan is approved, the terms of the loan can be approved by the customer before the purchase is completed by the merchant server with the loan for the purchase provided by the service provider server 638. If the loan is rejected, the purchase can be completed by the merchant without a loan 640 from the service provider. The merchant can either halt the transaction, or the merchant can ask for an alternative payment method, such as: cash, credit, check, bank account number, Paypal, etc.
An embodiment of the invention can be used to handle inbound telephone sales calls which can allow a user to begin a checkout process with a live sales representative over the phone. This step can include a customer ordering directly with a sales person on the other end of the telephone line, verbally placing the order. Alternatively this step could be performed over a chat service or a messaging service. A typical example of this would be a customer calling in to purchase a product or service out of a catalog, from a TV advertisement, through a merchant sales phone number, in response to a promotion (received by mail, email, or via a website), etc.
As shown in
The service provider can transmit an email an/or sms with an invoice for the goods or services purchased with a message containing a link to apply for a purchase loan 688. The system can detect if the customer clicks on the loan link 692. If the loan link is not clicked, the purchase can be completed without the loan 702. If the loan link is clicked, the system can perform loan application processing that includes analyzing the customer information as described above 692. The merchant receives a notification from the POS system that the loan is either approved or denied 696. If the loan is approved, the merchant can complete the transaction 700. If the loan is rejected, the merchant can either halt the transaction, or the merchant can complete the purchase without a loan 702. The customer may use an alternative payment method, such as: cash, credit, check, bank account number, Paypal, etc.
An embodiment the invention can be used to improve the customer service experience of both customers and merchants and reduce transactional friction for both customers and merchants. When customers can just click a link sent to them via a mobile device or an email to initiate and/or complete a return or an order modification, the customer experience is dramatically improved, and can be a very beneficial for a merchant seeking repeat customers. As shown in
During a return or an order modification, when the error is explained, a sales associate rings up a cancel and/or return and/or revised purchase 742. The sales associate can then request information from the customer 744 and the sales associate can enter the customer information into a payment interface 746. In some cases, a customer service representative may already have the customer information and may have already entered the identification information into a payment interface or an order database. Thus, steps 744 and 746 may not be necessary.
The system can process the customer request and transmit an invoice message for the corrected goods or services purchased. If additional money is required to pay for the corrected goods or services, the invoice can include a link to apply for a loan. The customer can then decide whether or not to apply for the loan 748. If the customer is not interested in the loan, the transaction can be completed without a loan. Alternatively, if the customer clicks on the loan link, the, customer's web browser is directed to an application process, and the user information is analyzed to determine if the loan is approved by the system 750. The merchant receives a notification from the POS system that the loan is either approved or denied 752. If the loan is rejected, the purchase can be completed without the loan 756. If the loan is approved and accepted, the purchase can be completed by the merchant with the loan 754.
The examples and illustrations included herein show, by way of illustration and not of limitation, specific embodiments in which the subject matter may be practiced. Other embodiments may be utilized and derived therefrom, such that structural and logical substitutions and changes may be made without departing from the scope of this disclosure. As a person skilled in the art will recognize from the previous detailed description and from the figures, modifications and changes can be made to the preferred embodiments of the invention without departing from the scope of this invention.
Kaditz, Jeffrey Howard, Stevens, Andrew Gettings, Selby, Bradley N., Ligon, Aaron Ng, Arias, Manuel De Jesus
Patent | Priority | Assignee | Title |
Patent | Priority | Assignee | Title |
6871287, | Jan 21 2000 | EDENTIFY, INC | System and method for verification of identity |
8627438, | Sep 08 2011 | Amazon Technologies, Inc | Passwordless strong authentication using trusted devices |
8856956, | Jul 08 2011 | DUN & BRADSTREET EMERGING BUSINESSES CORP | Automated entity verification |
9077714, | Apr 01 2012 | PAYFONE, INC | Secure authentication in a multi-party system |
9183362, | Aug 05 2011 | MOBILE MESSENGER GLOBAL, INC | Method and system for verification of human presence at a mobile device |
20110131638, | |||
20130256403, | |||
20140189808, | |||
20140282961, |
Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
Jun 13 2013 | ARIAS, MANUEL | AFFIRM, INC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 066467 | /0876 | |
Jun 15 2020 | Affirm, Inc. | (assignment on the face of the patent) | / | |||
Aug 04 2021 | KADITZ, JEFFREY HOWARD | AFFIRM, INC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 058497 | /0568 | |
Aug 04 2021 | SELBY, BRADLEY N | AFFIRM, INC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 058497 | /0568 | |
Aug 16 2021 | STEVENS, ANDREW GETTINGS | AFFIRM, INC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 058497 | /0568 | |
Oct 05 2021 | LIGON, AARON NG | AFFIRM, INC | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 058497 | /0568 |
Date | Maintenance Fee Events |
Jun 15 2020 | BIG: Entity status set to Undiscounted (note the period is included in the code). |
Date | Maintenance Schedule |
Jun 28 2025 | 4 years fee payment window open |
Dec 28 2025 | 6 months grace period start (w surcharge) |
Jun 28 2026 | patent expiry (for year 4) |
Jun 28 2028 | 2 years to revive unintentionally abandoned end. (for year 4) |
Jun 28 2029 | 8 years fee payment window open |
Dec 28 2029 | 6 months grace period start (w surcharge) |
Jun 28 2030 | patent expiry (for year 8) |
Jun 28 2032 | 2 years to revive unintentionally abandoned end. (for year 8) |
Jun 28 2033 | 12 years fee payment window open |
Dec 28 2033 | 6 months grace period start (w surcharge) |
Jun 28 2034 | patent expiry (for year 12) |
Jun 28 2036 | 2 years to revive unintentionally abandoned end. (for year 12) |